popup
Dropped Files | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Dropped Files

Name bff2044c8918a627_gZozYQsZNAIR9bV.exe
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\gZozYQsZNAIR9bV.exe
Size 462.0KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 2ba1022a54bbea2f9f692bca6db317b7
SHA1 9aaa3841471cdf38ee047f73cfabd2929443a7df
SHA256 bff2044c8918a627b0d8f6743c0c0aa847d26902ddce396c54613ac5679d27a6
CRC32 C672E00C
ssdeep 12288:mcN16VUF15I5hidf0vDbblDPBrT2i5QGVv6p:mc8O15IsdcvDbb1PBXs
Yara
  • PE_Header_Zero - PE File Signature Zero
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • IsPE32 - (no description)
  • IsNET_EXE - (no description)
  • IsWindowsGUI - (no description)
  • IsPacked - Entropy Check
VirusTotal Search for analysis
Name 30db0ca3818a39d4_tmpB4E.tmp
Submit file
Filepath C:\Users\test22\AppData\Local\Temp\tmpB4E.tmp
Size 1.6KB
Processes 1116 (gZozYQsZNAIR9bV.exe)
Type XML 1.0 document, ASCII text, with CRLF line terminators
MD5 980dce477919dfa4d2db0194c5c0904b
SHA1 77c7ec579a6f58b753ff92908da57cdcda4185c1
SHA256 30db0ca3818a39d4583256e817ae0c9580d76135326c48e8485bc585465fe2b4
CRC32 0220CAB1
ssdeep 24:2dH4+SEqCH/7IlNMFQ/rlMhEMjnGpwjpIgUYODOLD9RJh7h8gKBHGtn:cbhf7IlNQQ/rydbz9I3YODOLNdq3y
Yara None matched
VirusTotal Search for analysis